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CLOUD ONE” - WORKLOAD SECURITY 


Runtime security for physical, virtual, cloud, and container workloads 


The data center is undergoing a tremendous transformation. Organizations are now : Key Business Issues 
moving their server workloads to the cloud, and even leveraging containers and : 
serverless in their cloud-native application architectures. There are many advantages 
of hybrid cloud computing, however, it also comes with new risks and threats. Your 


Vv Automated protection 


Save time and resources with automated 
security policies across your hybrid 


organization must ensure compliance requirements are met, and that you have unified : environments, such as data center and 
security across all of your workloads such as physical servers, virtual, cloud, or container. : cloud, as you migrate or create new 
: workloads. 


Trend Micro Cloud One™ - Workload Security provides comprehensive detection and 
protection in a single solution that is purpose-built for server, cloud, and container 
environments. Workload Security allows for consistent security, regardless of the 
workload. It also provides a rich set of application programming interfaces (APIs), so 


Vv Unified security 


Deploy and consolidate detection and 
protection across your physical, virtual, 
multi-cloud, and container environments 











security can be automated and won't impact your teams. with a single agent. 
AUTOMATED x Security for the CI/CD pipeline 

f MOS . o : API-first, developer-friendly tools to help 
Security as code lets your DevOps teams bake security into their build pipeline to release > you ensure that security controls are 
continuously and frequently. With built-in automation, including automated discovery and : baked into DevOps processes. 


deployment, qguick-start templates, and our Automation Center, secure your environment 


3 . . Vv Accelerated compliance 
and meet compliance requirements quickly. 


Demonstrate compliance with a number 
: of regulatory requirements, including 
FLEXIBLE ‘  GDPR, PCI DSS, HIPAA, NIST, FedRAMP, 
: and more. 


Builder's choice. Security for your hybrid cloud, multi-cloud, and multi-service 
environments, as well as protection for any vintage of application delivery—all with broad 
platform support. 


ALL-IN-ONE SOLUTION 


Unified detection and protection capabilities in one platform, with the breadth, depth, and 
innovation required to meet your cloud security needs today and in the future. 
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TRUSTED HYBRID CLOUD SECURITY 


Full Life Cycle Container Security 


Workload Security delivers advanced runtime protection for 
containers. Layered security defends against attacks on the host, 
container platform (Docker), orchestrator (Kubernetes), containers a a . 
themselves, and even containerized applications. Designed with \ 
a rich set of APIs, Workload Security allows IT Security to protect 
containers with automated processes for critical security controls. 
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A i 7 . Í r Engine 
DevOps can leverage security as code by baking security into ! TEP = 
the application development pipeline, reducing the friction that | Cloud One- Š ER | 
. A fale : i : \ Container Security | z a 
comes with applying security in rapidly changing and evolving = = —— “s=-=-=------ £ eee Alene 
P A . . . ¥ Optional image scanning Protection for Container Apps, Platforms & Host 
infrastructures. Complementing container runtime security, Trend (@ Cloud One - Workload Security 


Micro Cloud One™ - Container Security looks for vulnerabilities, 
malware, secrets, and compliance in your build pipeline. 





Automated Cloud Security 





Workload Security works seamlessly to secure dynamic jobs in 
the cloud, with automated discovery of workloads across cloud 
providers, such as AWS, Microsoft Azure", and Google Cloud 
Platform”. 


ale & 
Cloud One: Cloud | 
| Security Services Platform | 
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1 Commit Buil Push Deplo) c R ; 
i Qem me LE ATA all of your workloads and automated protection across a multi- 
| Developers Source Code Build i a Security : j i ici 
epee keran emon A È Oee cloud environment with consistent, context-aware policies. 

S Center 























Y Cloud workload image creation 
| Y Security policy creation 





Deployment scripts and RESTful APIs enable integrated 

CI/CD Pipeline E E security with your existing toolset for automated security 
deployment, policy management, health checks, compliance 

reporting, and more. 








Virtualization and Datacenter Security 


Workload Security brings advanced protection to physical and virtual servers, enabling easy deployment and management of security 
across multiple environments through automatic policy management. Workload Security protects virtual desktops and servers against 
zero-day malware, including ransomware, cryptocurrency mining attacks, and network-based attacks, while minimizing operational 
impact from resource inefficiencies and emergency patching. 
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Security fueled by leading global threat research 


Our 15 global research centers and more than 10,000 independent 
researchers internationally have visibility into the entire global 
threat landscape. With teams dedicated to cloud and cloud-native 
applications, we use our wealth of knowledge to strengthen our 
products and protect against current and future threats. 
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Cybi = 
th wee GÊ Scope 
Vulnerabilities Cybercriminal 
& Exploi 
igi iia We continually analyze and identify new malware, ransomware, malicious URLS, 
ÇA command and control (C&C) locations, and domains that could be used in attacks. 
Targeted 
ASML Attacks Thanks to the Trend Micro™ Zero Day Initiative™, the market leader in vulnerability 
oA O S disclosure, we can identify and responsibly disclose new vulnerabilities while helping our 
loT = OT /lloT solutions discover threats sooner across a wide range of applications and platforms. 
Future Threat 
Landscape 
KEY ADVANTAGES 


Advanced Threat Protection 


e Advanced security controls such as an intrusion prevention 
system (IPS), integrity monitoring, machine learning, and 
application control. 


e Detect and block threats in real time, with minimal 
performance impact. 


e Multi-platform application control to detect and block 
unauthorized software execution. 


* Shield known and unknown vulnerabilities in web, enterprise 
applications, and operating systems through an IPS. 








* Send alerts and trigger proactive prevention upon the detection 
of suspicious or malicious activity. 


Page 3 of 7 » DATASHEET + TREND MICRO CLOUD ONE™ - WORKLOAD SECURITY 


Secure end-of-support systems with virtual patches delivered 


thro 


ugh an IPS, ensuring legacy systems stay protected from 


existing and future threats. 
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website credibility and protect users from infected sites 
web reputation threat intelligence from Trend Micro's global 
ain-reputation database. 


tify and block botnet and targeted attack C&C 
munications. 





et-leading threat research and threat intelligence from Trend 


™M 


o" Smart Protection Network™ enables better security against 





the 


atest threats 








Support and Empower Incident Response Teams: Detection and Response 


Complement your protection with the extended detection and response (XDR) capabilities of Trend Micro Vision One™ or take advantage of 
our managed detection and response (MDR) service, Trend Micro” Managed XDR. 


* Sweep for indicators of compromise (loC) or hunt for * Combine with other Trend Micro solutions for endpoint, email, 
indicators of attack (loA) for more comprehensive protection. and network to give you correlated detection and integrated 
investigation and response. 








* Detect server, cloud workload, and container platform 
(Docker, Kubernetes) attacks for better visibility. * Integrate via API with leading security information and event 

management (SIEM) platforms, as well as with security 

orchestration, automation, and response (SOAR) tools. 





= 


* Runa root-cause analysis for Linux and Microsoft Windows 
servers, understand the execution profile of an attack 
(including associated MITRE ATT&CK tactics, techniques, and e Augment your internal teams with Trend Micro threat experts 
procedures [TTPs]), and identify the scope of impact. to provide full threat monitoring, identification, and analysis 

hrough our 24/7 Managed XDR services. 
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Unified Security for the Hybrid Cloud 


* Cloud and datacenter connectors automatically discover e Ensure security at multiple layers of your container 
workloads running in your hybrid cloud environments for environments, including protection for the host, container 
full visibility and automated policy management. platform (Docker) and orchestrator (Kubernetes), the 

as l l l ; containers themselves, as well as the containerized 

* Eliminate the cost of deploying multiple point solutions applications: 
and achieve consistent security across physical, virtualized, 
cloud, and container environments with a lightweight, e Secure your container host with the same advanced 
single agent and management console. host-based controls applied across your physical, 





irtual hine (VM), and cloud workloads. 
e Enforce security early in the pipeline using advanced build- SAME HOE ONO. amd 














time image and registry scanning from Container Security, e Monitor for changes and attacks on Docker and 
complementing the runtime capabilities of Workload Kubernetes platforms with integrity monitoring and 
Security for protection across the container life cycle. log inspection capabilities. 


e Protect runtime containers through container 
vulnerability shielding (via IPS), real-time malware 
protection, and east-west container traffic inspection. 


Achieve Cost-Effective Compliance 


e Address major compliance requirements for the GDPR, * Support internal compliance initiatives to increase visibility 
PCI DSS, HIPAA, NIST, and more, with one integrated and of internal network activity. 


cost-effective solution. l ; ; 
e Help consolidate tools for meeting compliance 


e Provide detailed audit reports that document prevented requirements with enhanced file-integrity monitoring 
attacks and compliance policy status. capabilities. 


* Reduce the preparation time and effort required to 
support audits. 
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Automate and Streamline Security 








+ Automate security deployment, policy management, health e Match security to your policy needs to minimize the 
checks, and compliance reporting with Workload Security resources dedicated to specific security controls. 
REST APIs. fea: a . l 
* Simplify administration with centralized management 
* Reduce management costs by automating repetitive and across Trend Micro security products. Centralized reporting 
resource-intensive security tasks, reducing false-positive of multiple security controls reduces the challenge of 
security alerts, and enabling a workflow for security creating reports for individual products. 
incident response. : f ae f 
* Connect security with your existing environment and 
e Significantly reduce the complexity of managing file- DevOps tools with integration for leading SIEM, security 
integrity monitoring with cloud-based event safelisting and management, orchestration, monitoring, pipeline, and IT 
rusted events. service management tools. 











DETECTION AND PROTECTION CAPABILITIES 








Network security tools detect and stop network attacks and protect vulnerable app 


Host-Based Intrusion Prevention: 


Detects and blocks network-based exploits Firewall: 

of known vulnerabilities in popular Host-based firewall protects endpoints on 
applications and operating systems using the network using stateful inspection. 

IPS rules. 


System security tools lockdown systems and detect suspicious activity 


Application Control: Log Inspection: 

Blocks any executables and scripts Identifies and alerts unplanned changes, 
that aren't identified as known-good intrusions, or advanced malware attacks, 
applications or DLLs from installing/ including ransomware as it is happening on 
executing. your systems. 








Malware prevention stops malware and targeted attacks 


Anti-Malware: 


i. File Reputation— blocks known-bad files Behavioral Analysis: 


using our anti-malware signatures. Examines an unknown item as it loads 
and looks for suspicious behavior in the 
ii. Variant Protection— looks for obscure, operating system, applications, and scripts, 
polymorphic, or variants of malware as well as how they interact, in order to 
by using fragments of previously seen block them. 


malware and detection algorithms. 





SAP Scanner*: 

Web Reputation: Enables anti-malware scanning for 
Blocks known bad URLs and websites. Netweaver through the SAP Virus Scan 
Interface (VSI) 





*The SAP Scanner requires specialized functionality that must be purchased separately from your Workload Security license. 
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lications and servers 


Vulnerability Scanning: 


Performs a scan for known network-based 
vulnerabilities in the operating system and 
applications. 


File-Integrity Monitoring: 

Monitors files, libraries and services, and 
etc. for changes. To monitor a secure 
configuration, a baseline is created that 
represents the secure configuration. 
When changes from this desired state are 
detected, details are logged and alerts can 
be issued to stakeholders. 


Machine Learning: 


Analyzes unknown files and zero-day 
threats using machine learning algorithms 
to determine if the file is malicious. 


SAP” Certified 


Integration with SAP NetWeaver” 








BUILT FOR SECURITY IN THE CLOUD 


Workload Security is optimized for leading cloud providers’ infrastructures, including support for many operating systems, examples include: 


A Linux | Z Windows 


“Suse £) redhat 


Compatibility with configuration, event, and orchestration tools: 


A 


CHEF | Puppet 





O swiMLANE NOW 


CERTIFICATION FOR CLOUD SERVICE PROVIDERS (CSPs) 


Our CSP partner program is a global vali 
interoperability with industry-leading clo 





ARCHITECTURE AND SUPPOR 





dation program designed for CSPs to prove 
ud security solutions from Trend Micro. 


TED PLATFORMS 


Workload Security is software as a service (SaaS) hosted by Trend Micro in the cloud, 
which means additional value from new capabilities and security functionality are 
delivered continuously. We manage regular product and kernel updates, set up and 
maintain the security database, and administer the management platform. Our cloud- 





based security offering enables quick se 
operations for cloud instances. 











Workload Security Agent enforces the p 
(application control, anti-malware, IPS, fi 
via a small software component deploye 





up, as well as automates and simplifies security 





atform's detection and protection policy 
ewall, integrity monitoring, and log inspection) 
don the server or VM being protected. This can 


be automatically deployed with leading operational management tools like Chef, Puppet, 





Ansible, Microsoft System Center Config 


As Trend Micro is constantly supporting 
to the following URL for the complete lis 





Docker containers: https://cloudone.trendmicro.com/docs/workload-security/system- 


uration Manager, and AWS OpsWorks. 





, including Windows, Linux, Solaris”, AIX, and 


{h CentOS 


new operating systems and versions, please refer 





requirements/ 


For software installation, please refer to the Trend Micro™ Deep Security” Software, 


which provides similar functionality and 
data center or cloud. 





is available to install and manage in your own 
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ubuntu® 


v. OpsWorks SALTSTACK splunk> © sumologic QO a a ai 


NEMISTO 


Key Benefits 


e Fast: Start securing workloads in 


minutes 


e Cost effective: Annual subscription 


and usage-based pricing starting at 
$0.06/hour 


e Simple: Multiple security controls in a 


single product 


* Saves time: We manage and update 


the product so you can focus on your 
business 


e Proven: Protects thousands of 


customers and millions of servers 
globally 


e Flexible: Purchase and procure 


through AWS and Azure Marketplaces 


NIST 





Workload Security is part of Trend Micro Cloud One”, a security services platform for 
organizations building in the cloud, which also includes: 


* Trend Micro Cloud One™ - Container Security: 


Image scanning in your build pipeline 


* Trend Micro Cloud One™ - File Storage Security: 
Security for cloud file and object storage services 


* Trend Micro Cloud One™ - Application Security: 
Security for serverless functions, APIs, and applications 


* Trend Micro Cloud One™ - Network Security: 


Cloud network layer IPS security 


* Trend Micro Cloud One™ - Conformity: 
Cloud security and compliance posture management 


* Trend Micro Cloud One™ - Open Source Security by Snyk: 
Visibility and monitoring of open source risks 


KEY CERTIFICATIONS, COMPLIANCE, AND ALLIANCES 


aws 


j © Google Cloud 


* AWS Advanced Technology Partner 


* AWS Container Competency Partner 


* ISO 27001/ISO 27014/ISO 27017 
* PCI DSS 
* GDPR 


* HP Business Partnership 





TRUSTED EXPERTISE 





= I 
= 
Analyze the Future 





Trend Micro ranked #1 in IDC's 
Worldwide Hybrid Cloud Workload 
Security Market Shares report 















(B) TREND 


Securing Your Connected World 





product names may be trad 
subje! 





EE Microsoft Azure | Vmware 


* Microsoft Certified Partnership 

* SOC 2 

e Virtualization by VMware 

e VMware Cloud on AWS Partner 

e VMware Global Partner of the Year 


e Microsoft Application Development 
Gold Partner 


WIZARD SPIDER 
& SANDWORM 











1 performer in Linux, with 100% 





of attacks against the Linux host 





detected and prevented 
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d Micro, the Trend Micro | 


Trend Micro Cloud One - 
Workload Security checked 
all the boxes across 
cybersecurity and DevOps 


Mario Mendoza 
Team Lead, Cyber Security Architecture 
and Engagement Blackbaud 


ZERO DAY 
INITIATIVE 
Trend Micro ZDI 
disclosed 60% of the gloal 
vulnerabilities in 2020. 


This powers unmatched 
timeliness for virtual patches. 


For more information on compliance, | 
certifications, and audit reports, | 
please visit the Trend Micro Cloud One 











Trust Center. 


WERN: 
= ENGENUITY. 


A Foundation for Public Good 


MITRE Engenuity™ ATT&CK Evaluation 
Results with Workload Security 








FORRESTER 


Learn more about the Projected Total 
Economic Impact“ of the Trend Micro 
Cloud One™ Security Services Platform 
















